Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.
来源:NVD
Netscape Enterprise Server 中的主页发布功能存在漏洞,远程攻击者可以通过对提供Java applet程序的/publisher目录的GET请求浏览任意目录。